Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4756

4756 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-45670 Frigate cross-site request forgery in `config_save` and `config_set` request handlers — frigate 7.5 High2023-10-30
CVE-2023-43649 baserCMS CSRF vulnerability in Content preview Feature — basercms 4.7 Medium2023-10-30
CVE-2023-45317 Sielco Radio Link and Analog FM Transmitters Cross-Site Request Forgery — Analog FM transmitter 8.8 High2023-10-26
CVE-2023-5802 WordPress WP Knowledgebase Plugin <= 1.3.4 is vulnerable to Cross Site Request Forgery (CSRF) — WordPress Knowledge base & Documentation Plugin – WP Knowledgebase 4.3 Medium2023-10-26
CVE-2023-46204 WordPress Duplicate Theme Plugin <= 0.1.6 is vulnerable to Cross Site Request Forgery (CSRF) — Duplicate Theme 4.3 Medium2023-10-24
CVE-2023-46202 WordPress Auto Login New User After Registration Plugin <= 1.9.6 is vulnerable to Cross Site Request Forgery (CSRF) — Auto Login New User After Registration 4.3 Medium2023-10-24
CVE-2023-46198 WordPress Appointment Calendar Plugin <= 2.9.6 is vulnerable to Cross Site Request Forgery (CSRF) — Appointment Calendar 5.4 Medium2023-10-24
CVE-2023-46193 WordPress Internal Link Building Plugin <= 1.2.3 is vulnerable to Cross Site Request Forgery (CSRF) — Internal Link Building 4.3 Medium2023-10-24
CVE-2023-46191 WordPress Open Graph Metabox Plugin <= 1.4.4 is vulnerable to Cross Site Request Forgery (CSRF) — Open Graph Metabox 4.3 Medium2023-10-24
CVE-2023-46190 WordPress Novo-Map : your WP posts on custom google maps Plugin <= 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) — Novo-Map : your WP posts on custom google maps 4.3 Medium2023-10-24
CVE-2023-46189 WordPress Google Calendar Events Plugin <= 3.2.5 is vulnerable to Cross Site Request Forgery (CSRF) — Simple Calendar – Google Calendar Plugin 4.3 Medium2023-10-24
CVE-2023-46152 WordPress WOLF Plugin <= 1.0.7.1 is vulnerable to Cross Site Request Forgery (CSRF) — WOLF – WordPress Posts Bulk Editor and Manager Professional 4.3 Medium2023-10-24
CVE-2023-46151 WordPress Product Category Tree Plugin <= 2.5 is vulnerable to Cross Site Request Forgery (CSRF) — Product Category Tree 4.3 Medium2023-10-24
CVE-2023-46150 WordPress WP Radio plugin <= 3.1.9 is vulnerable to Cross Site Request Forgery (CSRF) — WP Radio 5.4 Medium2023-10-24
CVE-2023-46095 WordPress Smooth Scroll Links Plugin <= 1.1.0 is vulnerable to Cross Site Request Forgery (CSRF) — Smooth Scroll Links [SSL] 5.4 Medium2023-10-22
CVE-2023-46089 WordPress Userback Plugin <= 1.0.13 is vulnerable to Cross Site Request Forgery (CSRF) — Userback 4.3 Medium2023-10-22
CVE-2023-46085 WordPress Wp Ultimate Review Plugin <= 2.2.4 is vulnerable to Cross Site Request Forgery (CSRF) — Wp Ultimate Review 4.3 Medium2023-10-22
CVE-2023-46078 WordPress Serial Numbers for WooCommerce – License Manager Plugin <= 1.6.3 is vulnerable to Cross Site Request Forgery (CSRF) — WC Serial Numbers 5.4 Medium2023-10-21
CVE-2023-46067 WordPress Rocket Font Plugin <= 1.2.3 is vulnerable to Cross Site Request Forgery (CSRF) — Rocket Font 4.3 Medium2023-10-21
CVE-2023-5690 Cross-Site Request Forgery (CSRF) in modoboa/modoboa — modoboa/modoboa 6.5 -2023-10-20
CVE-2023-5687 Cross-Site Request Forgery (CSRF) in mosparo/mosparo — mosparo/mosparo 8.1 -2023-10-20
CVE-2020-36759 Woody code snippets <= 2.3.9 - Cross-Site Request Forgery Bypass — Woody Code Snippets – Insert PHP, CSS, JS, and Header/Footer Scripts 4.3 Medium2023-10-20
CVE-2020-36758 RSS Aggregator by Feedzy <= 3.4.2 - Cross-Site Request Forgery Bypass — RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator 4.3 Medium2023-10-20
CVE-2020-36755 Customizr <= 4.3.0 - Cross-Site Request Forgery Bypass — Customizr 4.3 Medium2023-10-20
CVE-2020-36754 Paid Memberships Pro <= 2.4.2 - Cross-Site Request Forgery Bypass — Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions 4.3 Medium2023-10-20
CVE-2023-5602 Social Media Share Buttons & Social Sharing Icons <= 2.8.5 - Cross-Site Request Forgery — Social Media Share Buttons & Social Sharing Icons 4.3 Medium2023-10-20
CVE-2020-36753 Hueman <= 3.6.3 - Cross-Site Request Forgery Bypass — Hueman 4.3 Medium2023-10-20
CVE-2021-4418 Custom CSS, JS & PHP <= 2.0.7 - Cross-Site Request Forgery Bypass — Custom css-js-php 4.3 Medium2023-10-20
CVE-2022-2441 ImageMagick Engine <= 1.7.5 - Cross-Site Request Forgery to Remote Command Execution — ImageMagick Engine 8.8 High2023-10-20
CVE-2023-4926 BEAR <= 1.1.3.3 - Cross-Site Request Forgery to Product Deletion — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net 5.4 Medium2023-10-20

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4756 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.